Endpoint SSL/TLS Decryption is Off in Policy but...Endpoints are doing it

Brian1941 3 months ago

Like the subject says, SSL/TLS Decryption is turned off in Central, but all three of my Mac Endpoints appear to be doing the decryption. Usually when I browse websites and I look at the certificate, it shows the XG's certificate as the issuer. Now, the certificates are all "Issued by: Sophos Endpoint RSA Root 1".

Any ideas? Is anyone else having this issue?

Parents

0 Brian1941 3 months ago

The settings in the 'Configure decryption of HTTPS websites' where you can stop decryption of financial, health, etc sites work also.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 Brian1941 3 months ago in reply to Brian1941

I removed the computers from the EAP and now everything is working. This is then a bug report--even though the policy is off for decryption, the endpoints still decrypt if the category settings are changed...and the policy is off.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 Sejal Singh 3 months ago in reply to Brian1941

Hi Brian1941

Thank you for the feedback. I see you have removed the computers from EAP as a workaround. If it's not too much of an ask, could you please repro the issue on a computer and provide me with a SDU when the computer is in that state? That will allow my team to investigate this issue and file a defect accordingly.

Thank you,

Sejal Singh
Team Lead, macOS Software Development
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 Brian1941 3 months ago in reply to Sejal Singh

Hi Sejal Singh , I can do that Friday or Saturday--I'll let you know afterwards.

Thanks.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Reply

0 Brian1941 3 months ago in reply to Sejal Singh

Hi Sejal Singh , I can do that Friday or Saturday--I'll let you know afterwards.

Thanks.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Children

No Data